[SECURITY] Fedora 44 Update: kf6-kplotting-6.25.0-1.fc44

KPlotting provides classes to do plotting...

[SECURITY] Fedora 44 Update: kf6-kquickcharts-6.25.0-1.fc44

The Quick Charts module provides a set of charts that can be used from QtQuick applications. They are intended to be used for both simple display of data as well as continuous display of high-volume data often referred to as plotters . The charts use a system called distance fields for their...

PlotAI 命令注入漏洞

PlotAI is an open source plotting assistant for MLJAR. A security vulnerability exists in PlotAI 0.0.6 and earlier versions, which stems from a lack of validation of LLM-generated output and could lead to remote code execution...

CVE-2024-34490

In Maxima through 5.47.0 before 51704c, the plotting facilities make use of predictable names under /tmp. Thus, the contents may be controlled by a local attacker who can create files in advance with these names. This affects, for example, plot2d...

DEBIAN-CVE-2024-34490

In Maxima through 5.47.0 before 51704c, the plotting facilities make use of predictable names under /tmp. Thus, the contents may be controlled by a local attacker who can create files in advance with these names. This affects, for example, plot2d...

CVE-2024-34490

In Maxima through 5.47.0 before 51704c, the plotting facilities make use of predictable names under /tmp. Thus, the contents may be controlled by a local attacker who can create files in advance with these names. This affects, for example, plot2d...

UBUNTU-CVE-2024-34490

In Maxima through 5.47.0 before 51704c, the plotting facilities make use of predictable names under /tmp. Thus, the contents may be controlled by a local attacker who can create files in advance with these names. This affects, for example, plot2d...

CVE-2024-34490

In Maxima through 5.47.0 before 51704c, the plotting facilities make use of predictable names under /tmp. Thus, the contents may be controlled by a local attacker who can create files in advance with these names. This affects, for example, plot2d...

CVE-2024-34490

In Maxima through 5.47.0 before 51704c, the plotting facilities make use of predictable names under /tmp. Thus, the contents may be controlled by a local attacker who can create files in advance with these names. This affects, for example, plot2d...

CVE-2024-34490

CVE-2024-34490 affects Maxima up to 5.47.0 before 51704c. The plotting facilities (e.g., plot2d) use predictable file names under /tmp, allowing a local attacker to pre-create files and influence contents. This is a local-impact condition as described in multiple connected sources (Red Hat, NVD/o...

CVE-2024-34490

In Maxima through 5.47.0 before 51704c, the plotting facilities make use of predictable names under /tmp. Thus, the contents may be controlled by a local attacker who can create files in advance with these names. This affects, for example, plot2d...

PT-2024-25940 · Maxima +1 · Maxima +1

Name of the Vulnerable Software and Affected Versions: Maxima versions prior to 5.47.0 before 51704c Description: The plotting facilities in the affected software make use of predictable names under /tmp, allowing a local attacker to control the contents by creating files in advance with these...

[SECURITY] Fedora 40 Update: rstudio-2023.12.1+402-2.fc40

RStudio is an integrated development environment IDE for R. It includes a console, syntax-highlighting editor that supports direct code execution, as well as tools for plotting, history, debugging and workspace management. This package provides common files for rstudio-desktop and rstudio-server...

OpenTSDB 2.4.0 Command Injection Exploit

This Metasploit module exploits an unauthenticated command injection vulnerability in the yrange parameter in OpenTSDB through 2.4.0 CVE-2020-35476 in order to achieve unauthenticated remote code execution as the root user. The module first attempts to obtain the OpenTSDB version via the api. If...

Raven - Advanced Cyber Threat Map (Simplified, Customizable, Responsive)

Raven - Advanced Cyber Threat Map Simplified, customizable and responsive. It uses D3.js with TOPO JSON, has 247 countries, 100,000 cities, and can be used in an isolated environment without external lookups!. Live - Demo https://qeeqbox.github.io/raven/ Offline - Demo Features Uses D3.js Not...

Malicious Package

mplatlib is a malicious package. The package is a typosquat of the legitimate Python plotting software matplotlib from PyPI and is designed to infiltrate the PyPI repository that secretly pull in cryptominers on the affected machines...

Malicious Package

matplatlibplus is a malicious package. The package is a typosquat of the legitimate Python plotting software matplotlib from PyPI and is designed to infiltrate the PyPI repository that secretly pull in cryptominers on the affected machines...

Malicious Package

maratlib is a malicious package. The package is a typosquat of the legitimate Python plotting software matplotlib from PyPI and is designed to infiltrate the PyPI repository that secretly pull in cryptominers on the affected machines...

[SECURITY] Fedora 28 Update: kst-2.0.8-20.fc28

Kst is a real-time data viewing and plotting tool with basic data analysis functionality. Kst contains many powerful built-in features and is expandable with plugins and extensions. Main features of kst include: Robust plotting of live "streaming" data. Powerful keyboard and mouse plot...

[SECURITY] Fedora 23 Update: kf5-kplotting-5.24.0-1.fc23

KPlotting provides classes to do plotting...